Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/TxiJE3yWd-t9wz2vdXbHRLOTt-4.roa
File: TxiJE3yWd-t9wz2vdXbHRLOTt-4.roa (raw, json)
Hash identifier: 9QR4bi1pU1Sh5VXchQDPW765qmF9aFM3RESpLK1Zk/A=
Subject key identifier: 4F:18:89:13:7C:96:77:EB:7D:C3:3D:AF:75:76:C7:44:B3:93:B7:EE
Certificate issuer: /CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Certificate serial: 246F91D1
Authority key identifier: 79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/TxiJE3yWd-t9wz2vdXbHRLOTt-4.roa
Signing time: Thu 03 Feb 2022 07:16:26 +0000
ROA not before: Thu 03 Feb 2022 07:16:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51478
IP address blocks: 91.219.15.0/24 maxlen: 24
91.219.12.0/24 maxlen: 24
91.219.12.0/22 maxlen: 22
91.219.14.0/24 maxlen: 24
91.219.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 611291601 (0x246f91d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Validity
Not Before: Feb 3 07:16:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f1889137c9677eb7dc33daf7576c744b393b7ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e3:fe:bd:aa:cd:b5:5c:70:b0:d7:c3:5e:28:
1c:e1:c1:54:2e:74:82:f5:15:14:33:a3:ca:d8:71:
ef:3b:3a:7d:f2:ae:a4:58:7d:0b:09:33:82:70:f6:
78:f6:c7:fd:b8:11:bf:19:83:b9:bb:1b:b5:e6:e4:
79:39:7a:a8:61:02:71:28:e8:88:51:b7:ec:97:d6:
6e:12:31:cd:65:7f:df:a7:6b:e8:62:d0:b0:22:87:
52:b3:19:8b:78:25:70:0d:86:f1:8c:ba:43:43:61:
c3:1d:27:f5:50:77:bb:7b:ec:a2:5e:e2:4e:a5:3d:
62:57:e7:35:6b:9c:e1:ac:3d:2b:2d:b3:77:70:47:
6f:14:28:2f:53:82:34:0e:7f:9e:dd:f0:69:b5:44:
55:41:8e:92:52:0e:78:7d:3d:a2:c6:c6:2e:98:a3:
0a:c2:e0:c5:5a:6e:31:85:2d:b3:0b:79:2f:fc:9d:
6b:dd:95:7f:80:ac:e6:f6:f8:9a:72:c6:27:51:7d:
c8:83:b3:15:f6:d0:c0:02:41:dc:7d:bf:0b:ae:07:
d4:f4:5e:3f:86:31:0c:d0:aa:41:62:2c:e1:39:84:
57:e7:1d:31:35:07:c2:32:ff:6e:e5:56:bd:5b:d7:
45:d3:67:db:ce:21:96:0f:04:e1:4d:98:86:d7:63:
1b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:18:89:13:7C:96:77:EB:7D:C3:3D:AF:75:76:C7:44:B3:93:B7:EE
X509v3 Authority Key Identifier:
keyid:79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/TxiJE3yWd-t9wz2vdXbHRLOTt-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/eXmGPOqCrrjp3zhLOapRdvS8-mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.219.12.0/22
Signature Algorithm: sha256WithRSAEncryption
17:0b:7b:75:f1:db:40:61:f9:bb:14:1e:52:e3:89:72:2e:a8:
15:d8:97:a5:7f:98:d6:04:6e:69:e1:e2:92:31:3b:73:d5:5f:
5b:c4:65:d3:28:16:c8:b9:2c:a7:f8:a9:89:52:f2:d1:74:44:
cc:83:3d:8a:04:99:92:55:21:4c:78:67:42:c6:57:e7:18:48:
55:1c:95:5f:eb:73:92:d2:c1:3c:cf:89:9b:a3:50:2c:d0:c7:
11:b7:83:46:24:d8:45:6b:be:56:1b:1d:bc:d1:11:b0:ac:cf:
37:83:51:f4:b0:85:17:59:de:63:ae:26:74:bd:76:48:43:6f:
02:ff:63:5e:09:2a:eb:4d:9c:33:26:00:91:e5:b2:c7:83:33:
a0:55:16:5b:7a:43:04:01:2a:37:cb:ad:56:84:17:bc:9a:37:
4d:d1:16:40:c5:77:90:6b:9f:53:3f:b7:59:99:63:db:25:bd:
e0:cc:b2:56:99:3b:2b:df:8c:fb:6f:1b:3e:17:c5:6f:74:77:
bf:81:aa:89:15:67:da:76:5f:75:95:ba:a9:fa:6c:5f:33:77:
f6:67:97:d6:00:6e:3b:db:75:33:02:ca:d1:4c:2d:79:d0:a1:
77:cb:1e:67:6b:2e:6e:90:bb:5e:db:9d:d8:9b:c5:a3:27:ff:
fd:ac:5f:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:51 2024 by rpki-client on console-fra.rpki-client.org